Retail - Information Management Today

British Clothing Retailer Fat Face Discloses Data Breach

Data Breach Today

MARCH 23, 2021

Employee and Customer Information Compromised in January Attack; ICO Investigating British clothing and accessories retailer Fat Face says it detected a data breach in January, which exposed personal information - including partial payment card numbers - for an unspecified number of customers and employees.

Retail

Retail Data breaches IT

Clothing Retailer H&M Told to Wear $41 Million GDPR Fine

Data Breach Today

OCTOBER 5, 2020

Employee Surveillance Violations Trigger Germany's Biggest Privacy Fine to Date Privacy regulators in Germany have slammed clothing retailer H&M with a $41 million fine for collecting and retaining private employee data in violation of the EU's General Data Protection Regulation.

Retail

Retail GDPR Privacy

Retailer Fat Face Pays $2 Million Ransom to Conti Gang

Data Breach Today

MARCH 26, 2021

News Follows 'Private and Confidential' Breach Notification Fat Face Sent to Victims Left unsaid in Fat Face's "strictly private and confidential" data breach notification to affected customers this week was any indication that the fashion clothing retailer had paid a reported $2 million ransom to the Conti gang to unlock its systems.

Retail

Retail Data breaches Ransomware IT

New Zealand Fitness Retailer Hit By DragonForce Ransomware

Data Breach Today

JULY 5, 2024

ransomware builder compromised New Zealand's leading fitness equipment retailer. Ransomware Group Apparently Uses Leaked LockBit Builder Code to Mount Attacks A ransomware group that uses locker malware based on the leaked LockBit 3.0 The DragonForce ransomware group on Tuesday said on its leak site that it stole 5.31

Retail

Retail Ransomware IT

Use Cases for Apache Cassandra®

From understanding its distributed architecture to unlocking its incredible power for industries like healthcare, finance, retail and more, experience how Cassandra® can transform your entire data operations.

Retail

Help Safeguard Retailers Against Social Engineering Attacks

Data Breach Today

MAY 15, 2024

Navigating the Complex Landscape of Evolving Threats and Cybersecurity Resilience Explore the front-line strategies and expert insights retailers are leveraging to combat the rising tide of social engineering attacks, safeguarding customer data and fortifying cybersecurity defenses in an increasingly volatile digital landscape.

Retail

Retail Cybersecurity

Mass Retail Hacks Affect Adobe Commerce and Magento Stores

Data Breach Today

OCTOBER 4, 2024

4,387 Online Merchants Compromised, Including Cisco and National Geographic Stores Thousands of online stores running Adobe Commerce and Magento software have been hacked since the summer and infected with digital payment skimmers by attackers targeting a vulnerability known as CosmicSting.

Retail

Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin

Krebs on Security

NOVEMBER 11, 2019

and founded in 1856, privately-held Orvis is the oldest mail-order retailer in the United States. The company has approximately 1,700 employees, 69 retail stores and 10 outlets in the US, and 18 retail stores in the UK. Orvis says the exposure was inadvertent, and that many of the credentials were already expired.

Retail

Retail Passwords Data breaches Security

Luxury Retailer Neiman Marcus Suffers Snowflake Breach

Data Breach Today

JUNE 25, 2024

More Victims of Campaign Against Data Warehousing Platform Snowflake Come to Light Add luxury department store chain Neiman Marcus and the Los Angeles Unified School District to the list of known victims of a cybercrime that accessed accounts at cloud-based data warehousing platform Snowflake.

Retail

Retail Cloud Access

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

Weissman's World

FEBRUARY 1, 2023

Today, however, I’d like to speak to retailers, where the opportunities to Do Information Right™ seem markedly… Read More » Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy The post Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy appeared first on Holly Group.

Retail

Retail Security Government Records Management

Target Sues Insurer Over 2013 Data Breach Costs

Data Breach Today

NOVEMBER 21, 2019

Lawsuit Claims Insurer Owes Retailer for Coverage of Card Replacement Costs Target has filed a lawsuit against its long-time insurer, ACE American Insurance Co., in an attempt to recoup money it spent to replace payment cards as part of settlements over the retailer's massive 2013 data breach.

Insurance

Insurance Data breaches Retail IT

Home Depot Settles 2014 Breach Lawsuit for $17.5 Million

Data Breach Today

NOVEMBER 25, 2020

Home Supply Retailer Must Also Implement Several Cybersecurity Protocols The Home Depot reached a $17.5 million settlement in a class-action lawsuit stemming from a 2014 data breach that compromised the payment card data of 40 million of the retailer's customers.

Retail

Retail Data breaches Cybersecurity Security

Crooks stole €15 Million from European retail company Pepco

Security Affairs

MARCH 1, 2024

million from the European variety retail and discount company Pepco through a phishing attack. The Hungarian business of the European discount retailer Pepco Group has been the victim of a phishing attack, crooks stole about 15 million euros ($16.3 Crooks stole €15.5 ” reads the press release published by the company.

Retail

Retail Phishing Access IT

Colonoscopy Prep Retail Website Breach Festered for Years

Data Breach Today

JANUARY 9, 2023

Personal Data of 244,000 in Flux After Malware Probe of Gastroenterologist Vendor A Kansas-based vendor is notifying nearly 250,000 patients that their payment card and other personal information may have been compromised in a hacking incident that dates back to 2019 and involves its colonoscopy prep kit online retail business.

Retail

Retail Personal data IT

Hive Ransomware Group Leaks Data From European Retailer

Data Breach Today

DECEMBER 8, 2022

Black Friday Attack Affected Intersport Outlets in Northern France The Hive ransomware-as-a-service group says it posted customer data obtained during a November attack against French sports retailer Intersport.

Retail

Retail Ransomware Government IT

Fashion retailer Forever 21 data breach impacted +500,000 individuals

Security Affairs

AUGUST 31, 2023

Fashion retailer Forever 21 disclosed a data breach that exposed the personal information of more than 500,000 individuals. On March 20, 2023, the fashion retailer Forever 21 has discovered a cyber incident that impacted a limited number of systems. The retailer also notified law enforcement.

Retail

Retail Data breaches Personal data Ransomware

Not So Fast: Retailer Shein Fined $1.9M for Breach Cover-Up

Data Breach Today

OCTOBER 14, 2022

39 Million Shoppers of Shein and Romwe Weren't Notified of Personal Data Exposure Fast-fashion clothing giant Shein has been fined $1.9

Retail

Retail Passwords Data breaches Personal data

Are Retailers Shopping for a Cybersecurity Breach?

Thales Cloud Protection & Licensing

NOVEMBER 22, 2022

Are Retailers Shopping for a Cybersecurity Breach? Retailers started the century as the prime targets for cyber attackers looking for credit card data. Today, unfortunately, retailers are again coming back to the spotlight. Similar to many organizations, 36% of retail respondents cited human error as the leading threat.

Retail

Retail Cybersecurity Ransomware Authentication

Hackers Keep Winning by Gambling on SQL Injection Exploits

Data Breach Today

DECEMBER 14, 2023

Gambling and Retail Firms Top Targets of 'GambleForce' Group, Researchers Warn A recently spotted hacking group with a penchant for using open source tools has been using a less-than-novel tactic: exploiting SQL injection flaws.

Retail

Not So Fast: Retailer Shein Fined $1.9M for Breach Coverup

Data Breach Today

OCTOBER 14, 2022

39 Million Shoppers of Shein and Romwe Weren't Notified of Personal Data Exposure Fast-fashion clothing giant Shein has been fined $1.9

Retail

Retail Passwords Data breaches Personal data

Retail giant Woolworths discloses data breach of MyDeal online marketplace

Security Affairs

OCTOBER 17, 2022

Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 Bad news for the customers of the MyDeal online marketplace, the Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 million MyDeal customers. million of them. Pierluigi Paganini.

Retail

Retail Data breaches Passwords Access

LockBit Publishes Data Stolen in London Drugs Attack

Data Breach Today

MAY 24, 2024

Canadian Retail Pharmacy Chain Says It's Reviewing Exposed Data on Gang's Leak Site LockBit has begun to leak on its dark web site files of data the Russian-speaking cybercriminal gang claims to have stolen in an April attack on London Drugs.

Retail

Retail IT

How Amazon and Walmart Could Fix IoT Security

Data Breach Today

JUNE 26, 2020

Bruce Schneier Says Pressure on Retailers Could Fix Insecure IoT Supply Chains IoT devices can be made cheaply and quickly. The Atlantic Council is proposing regulations that would require technology retailers to sell devices that meet security standards, which would, in turn, put pressure on IoT component makers.

IoT

IoT Retail Security

From St. Louis to France, Ransomware Victim List Expands

Data Breach Today

NOVEMBER 23, 2020

Among the Causes: Hit Against Managed.com Website Hosting Giant Ransomware continues to pummel many types of organizations, recently including South Korea's E-Land retail group, French newspaper Paris-Normandie and a Georgia county school system.

Ransomware

Ransomware Retail

FTC Bans Rite Aid From Using Facial Recognition Tech

Data Breach Today

DECEMBER 20, 2023

5-Year Ban Comes After Retailer Failed to Mitigate Security Surveillance Risks The Federal Trade Commission has banned Rite Aid from using AI-based facial recognition technology for security surveillance for five years after the retail drug store chain failed to implement safeguards such as mitigating risks for inaccurate outputs based on race and (..)

Retail

Retail Risk Security

Credential-Harvesting Campaign Impersonates Fashion Retailer Shein

KnowBe4

MAY 7, 2024

A phishing campaign is impersonating fashion retailer Shein in an attempt to steal users’ credentials, according to researchers at Check Point.

Retail

Retail Phishing Security

UK's Tesco Supermarket App and Website Disrupted

Data Breach Today

OCTOBER 25, 2021

Retailer Says an Attempt Was Made to Interfere With Its Systems Grocery retailer Tesco said it faced a service disruption on its app and website. The company told ISMG that the outage was likely due to an attempt to interfere with its systems.

Retail

Retail IT

Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

Security Affairs

JANUARY 1, 2024

The Cactus ransomware group claims to have hacked Coop, one of the largest retail and grocery providers in Sweden. Coop is one of the largest retail and grocery providers in Sweden, with approximately 800 stores across the country. The stores are co-owned by 3.5 million members in 29 consumer associations.

Retail

Retail Ransomware Encryption Access

Breach Roundup: Ex-Verizon Worker Cops to Spying for China

Data Breach Today

AUGUST 29, 2024

retailer Dick's Sporting Goods was breached, the U.S. Also: Turn in Volodymyr Kadariya, Get $2.5 Million from Uncle Sam This week, an ex-Verizon employee pleaded guilty, SonicWall fixed critical flaws,South Korean hackers exploited a zero-day, U.S.

Retail

Retail Government

Elevating retail operations with Jamf strategic partnerships

Jamf

JANUARY 17, 2024

Jamf partners up with our allies in the retail space to enhance the customer retail experience. Read this blog to learn more about how Jamf and our partners can make a difference.

Retail

California Fines Sephora $1.2 Million for Privacy Violations

Data Breach Today

AUGUST 25, 2022

Retailer Accused of Selling Customer Data While Failing to Honor Opt-Out Requests Retailer Sephora has been fined $1.2

Privacy

Privacy Retail IT

Proof of Concept: California's First Consumer Privacy Fine

Data Breach Today

OCTOBER 17, 2022

Also: Defending Against New Ransomware Tactics; Mitigating Impact of Zelle Scams In the latest "Proof of Concept," Lisa Sotto of Hunton Andrews Kurth LLP and former CISO David Pollino join ISMG editors discuss the first California consumer protection fine issued against retailer Sephora, defending against new ransomware tactics, and mitigating the (..)

Retail

Retail Privacy Ransomware

Ransomware Hit on Tietoevry Causes IT Outages Across Sweden

Data Breach Today

JANUARY 22, 2024

Healthcare, local governments, retail outlets and the country's largest cinema chain are among the organizations experiencing ongoing disruptions.

Ransomware

Ransomware Retail IT Government

LockBit 3.0 Claims Attack on Australian Auto Dealer Eagers

Data Breach Today

JANUARY 2, 2024

Eagers Says It Doesn't Know Full Extent of Hack But Has Started Contacting Victims Brisbane-based retail group Eagers Automotive is investigating a cyberattack that disrupted parts of its regional operations and compromised the personal information of some of its customers.

Retail

Retail IT

British Retailer WH Smith Discloses Breach of Employee Data

Data Breach Today

MARCH 2, 2023

Website Unaffected and No Customer Accounts or Databases Exposed, Company Reports High street retailer WH Smith reports that it suffered a hack attack that led to the exposure of current and former employees' personal data, but no exposure of customer data or website disruption.

Retail

Retail Data breaches Personal data Ransomware

Free Ransomware: LockBit Knockoffs and Imposters Proliferate

Data Breach Today

APRIL 17, 2024

Experts See Surge in Attacks, Including in Russia, Using Leaked LockBit Code What do a German healthcare network, a Russian security company and an American bridal clothing retailer have in common?

Retail

Retail Ransomware Security

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Krebs on Security

OCTOBER 26, 2021

federal investigators today raided the Florida offices of PAX Technology , a Chinese provider of point-of-sale devices used by millions of businesses and retailers globally. The investigation into PAX Technology comes at a dicey time for retailers, many of whom are gearing up for the busy holiday shopping season. organizations.

Sales

Sales Retail Computer and Electronics Risk

35.5 Million Customers Affected by Apparel Maker VF's Breach

Data Breach Today

JANUARY 19, 2024

The breach disrupted e-commerce order fulfillment as well as inventory replenishment at retail stores. Owner of Such Brands as North Face and Vans Says Business Mostly Back to Normal Skateboarding shoe and outdoor apparel maker VF Corp. said data pertaining to 35.5

Retail

Retail Data breaches

Claire's: Magecart E-Commerce Hackers Stole Card Data

Data Breach Today

JUNE 15, 2020

Magecart Gangs Targeting Larger Organizations During Lockdown, Researcher Warns Jewelry retailer Claire's says Magecart attackers hits its e-commerce store, hosted on Salesforce Commerce Cloud, and stole an unspecified number of customers' payment card details.

Retail

Retail Cloud Security IT

Former Microsoft Engineer Sentenced to 9 Years in Prison

Data Breach Today

NOVEMBER 10, 2020

Found Guilty on 18 Charges Tied to Theft From Retail Platform A former Microsoft software engineer has been sentenced to nine years in prison after being found guilty on 18 criminal charges in connection with the theft of more than $10 million through the company's online retail platform.

Retail

Retailers: Credential Harvesting Attacks Are the “Big Thing” This Year for the Holiday Season

KnowBe4

NOVEMBER 21, 2022

New data polled from analysts and members of the retail industry about their security focus is this holiday season reveals the kinds of attacks every organization should be preparing for.

Retail

Retail Security Phishing

New Data Leaks Add to Australia's Data Security Reckoning

Data Breach Today

OCTOBER 18, 2022

It comes as wine retailer Vinomofo disclosed a breach and as the Optus telecommunications breach continues to fuel data security concerns in Australia.

Retail

Retail Security Personal data Sales

'Horns&Hooves' Malware Campaign Hits Over 1,000 Victims

Data Breach Today

DECEMBER 3, 2024

Russian Threat Actor Delivers NetSupport RAT, BurnsRAT via Fake Requests A malware campaign targeting Russian retailers and service businesses aims to deploy remote access tools and install infostealer malware.

Retail

Retail Access

Former Microsoft Engineer Convicted of Insider Fraud

Data Breach Today

FEBRUARY 27, 2020

Used Admin Privileges to Steal $10 Million From Retail Platform A former Microsoft software engineer was convicted this week on 18 federal charges tied to stealing more than $10 million through the company's online retail platform.

Retail

British Clothing Retailer Fat Face Discloses Data Breach

Clothing Retailer H&M Told to Wear $41 Million GDPR Fine

Trending Sources

Retailer Fat Face Pays $2 Million Ransom to Conti Gang

New Zealand Fitness Retailer Hit By DragonForce Ransomware

Use Cases for Apache Cassandra®

Help Safeguard Retailers Against Social Engineering Attacks

Mass Retail Hacks Affect Adobe Commerce and Magento Stores

Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin

Luxury Retailer Neiman Marcus Suffers Snowflake Breach

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

Target Sues Insurer Over 2013 Data Breach Costs

Home Depot Settles 2014 Breach Lawsuit for $17.5 Million

Crooks stole €15 Million from European retail company Pepco

Colonoscopy Prep Retail Website Breach Festered for Years

Hive Ransomware Group Leaks Data From European Retailer

Fashion retailer Forever 21 data breach impacted +500,000 individuals

Not So Fast: Retailer Shein Fined $1.9M for Breach Cover-Up

Are Retailers Shopping for a Cybersecurity Breach?

Hackers Keep Winning by Gambling on SQL Injection Exploits

Not So Fast: Retailer Shein Fined $1.9M for Breach Coverup

Retail giant Woolworths discloses data breach of MyDeal online marketplace

LockBit Publishes Data Stolen in London Drugs Attack

How Amazon and Walmart Could Fix IoT Security

From St. Louis to France, Ransomware Victim List Expands

FTC Bans Rite Aid From Using Facial Recognition Tech

Credential-Harvesting Campaign Impersonates Fashion Retailer Shein

UK's Tesco Supermarket App and Website Disrupted

Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

Breach Roundup: Ex-Verizon Worker Cops to Spying for China

Elevating retail operations with Jamf strategic partnerships

California Fines Sephora $1.2 Million for Privacy Violations

Proof of Concept: California's First Consumer Privacy Fine

Ransomware Hit on Tietoevry Causes IT Outages Across Sweden

LockBit 3.0 Claims Attack on Australian Auto Dealer Eagers

British Retailer WH Smith Discloses Breach of Employee Data

Free Ransomware: LockBit Knockoffs and Imposters Proliferate

FBI Raids Chinese Point-of-Sale Giant PAX Technology

35.5 Million Customers Affected by Apparel Maker VF's Breach

Claire's: Magecart E-Commerce Hackers Stole Card Data

Former Microsoft Engineer Sentenced to 9 Years in Prison

Retailers: Credential Harvesting Attacks Are the “Big Thing” This Year for the Holiday Season

New Data Leaks Add to Australia's Data Security Reckoning

'Horns&Hooves' Malware Campaign Hits Over 1,000 Victims

Former Microsoft Engineer Convicted of Insider Fraud

Stay Connected